1 // permissions required by each component
   2 grant codeBase "file:${java.home}/lib/ext/zipfs.jar" {
   3         permission java.io.FilePermission "<<ALL FILES>>", "read,write,delete";
   4         permission java.lang.RuntimePermission "fileSystemProvider";
   5         permission java.util.PropertyPermission "*", "read";
   6 };
   7 
   8 grant codeBase "file:${java.home}/lib/ext/cldrdata.jar" {
   9         permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*";
  10         permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*";
  11         permission java.util.PropertyPermission "*", "read";
  12 };
  13 
  14 grant codeBase "file:${java.home}/lib/ext/localedata.jar" {
  15         permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*";
  16         permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*";
  17         permission java.util.PropertyPermission "*", "read";
  18 };
  19 
  20 grant codeBase "file:${java.home}/lib/ext/dnsns.jar" {
  21         permission java.security.AllPermission;
  22 };
  23 
  24 grant codeBase "file:${java.home}/lib/ext/nashorn.jar" {
  25         permission java.security.AllPermission;
  26 };
  27 
  28 grant codeBase "file:${java.home}/lib/ext/jfxrt.jar" {
  29         permission java.security.AllPermission;
  30 };
  31 
  32 grant codeBase "file:${java.home}/lib/ext/sunec.jar" {
  33         permission java.security.AllPermission;
  34 };
  35 
  36 grant codeBase "file:${java.home}/lib/ext/sunjce_provider.jar" {
  37         permission java.security.AllPermission;
  38 };
  39 
  40 grant codeBase "file:${java.home}/lib/ext/sunpkcs11.jar" {
  41         permission java.security.AllPermission;
  42 };
  43 
  44 // solaris-only
  45 grant codeBase "file:${java.home}/lib/ext/ucrypto.jar" {
  46         permission java.security.AllPermission;
  47 };
  48 
  49 // windows-only
  50 grant codeBase "file:${java.home}/lib/ext/sunmscapi.jar" {
  51         permission java.security.AllPermission;
  52 };
  53 
  54 grant codeBase "file:${java.home}/lib/ext/jaccess.jar" {
  55         permission java.security.AllPermission;
  56 };
  57 grant codeBase "file:${java.home}/lib/ext/access-bridge-64.jar" {
  58         permission java.security.AllPermission;
  59 };
  60 
  61 // default permissions granted to all domains
  62 
  63 grant {
  64         // Allows any thread to stop itself using the java.lang.Thread.stop()
  65         // method that takes no argument.
  66         // Note that this permission is granted by default only to remain
  67         // backwards compatible.
  68         // It is strongly recommended that you either remove this permission
  69         // from this policy file or further restrict it to code sources
  70         // that you specify, because Thread.stop() is potentially unsafe.
  71         // See the API specification of java.lang.Thread.stop() for more
  72         // information.
  73         permission java.lang.RuntimePermission "stopThread";
  74 
  75         // allows anyone to listen on dynamic ports
  76         permission java.net.SocketPermission "localhost:0", "listen";
  77 
  78         // "standard" properies that can be read by anyone
  79 
  80         permission java.util.PropertyPermission "java.version", "read";
  81         permission java.util.PropertyPermission "java.vendor", "read";
  82         permission java.util.PropertyPermission "java.vendor.url", "read";
  83         permission java.util.PropertyPermission "java.class.version", "read";
  84         permission java.util.PropertyPermission "os.name", "read";
  85         permission java.util.PropertyPermission "os.version", "read";
  86         permission java.util.PropertyPermission "os.arch", "read";
  87         permission java.util.PropertyPermission "file.separator", "read";
  88         permission java.util.PropertyPermission "path.separator", "read";
  89         permission java.util.PropertyPermission "line.separator", "read";
  90 
  91         permission java.util.PropertyPermission "java.specification.version", "read";
  92         permission java.util.PropertyPermission "java.specification.vendor", "read";
  93         permission java.util.PropertyPermission "java.specification.name", "read";
  94 
  95         permission java.util.PropertyPermission "java.vm.specification.version", "read";
  96         permission java.util.PropertyPermission "java.vm.specification.vendor", "read";
  97         permission java.util.PropertyPermission "java.vm.specification.name", "read";
  98         permission java.util.PropertyPermission "java.vm.version", "read";
  99         permission java.util.PropertyPermission "java.vm.vendor", "read";
 100         permission java.util.PropertyPermission "java.vm.name", "read";
 101 };
 102